Your Privacy is Important to Us
Riskonnect, Inc. (“Riskonnect”, “We”, or “Us”) is committed to protecting the privacy of individuals who visit Riskonnect’s web sites (“Visitors”), individuals who register to use the Services as defined below (“Customers”), and individuals who register to attend Riskonnect’s corporate events (“Attendees”). This Privacy Statement describes Riskonnect’s privacy practices in relation to the use of Riskonnect’s web sites and the related applications and services offered by Riskonnect (the “Services”). This Privacy Statement and associated practices are intended to demonstrate Riskonnect’s commitment to transparency, accountability, and choice regarding the collection and use of your personal information.
Riskonnect also abides by the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce and the European Union (“EU”) and Switzerland (collectively referred to as the “Safe Harbor Frameworks”). Riskonnect has certified that it adheres to the Safe Harbor Principles. For more information on the Safe Harbor Frameworks and Safe Harbor Principles, and to view the scope of Riskonnect’s certification, please visit http://www.export.gov/safeharbor/.
As part of our participation in these Safe Harbor Frameworks, Riskonnect has agreed to dispute resolution by the EU and/or Swiss Data Protection Authorities (“EU/Swiss DPAs”) to serve as an independent recourse mechanism (“IRM”) for dispute resolution arising from collection, use, and retention of personal information transferred from Switzerland or EU member countries to Riskonnect. In choosing the EU/Swiss DPAs to serve as an IRM for dispute resolution, Riskonnect has remitted the necessary annual fee to the United States Council for International Business (“USCIB”) who acts as a trusted third party on behalf of the EU/Swiss DPAs with regards to disputes relating to Riskonnect’s compliance with the Safe Harbor Frameworks.
If you have any questions or complaints regarding our compliance with the Safe Harbor Frameworks, please see Section 12 (Enforcement) below.
1. Web Site Covered & Links to Other Sites
This Privacy Statement covers the information practices of the web sites that link to this Privacy Statement, including http://www.riskonnect.com, http://bi.riskonnect.com, ftp.riskonnect.com, and http://login.riskonnect.com.
2. Information Collected
When expressing an interest in obtaining additional information about the Services or registering to use the Services, We require you to provide us with personal contact information, such as name, company name, address, phone number, and email address (“Required Contact Information”). When purchasing the Services, Riskonnect may require you to provide financial qualification and billing information, such as billing name and address, credit card number, and the number of employees within the organization that will be using the Services (“Billing Information”). Riskonnect may also ask you to provide additional information, such as company annual revenues, number of employees, or industry (“Optional Information”). Required Contact Information, Billing Information, and Optional Information about Customers are referred to collectively as “Data About Riskonnect Customers”, or in the case of Attendees, “Data About Riskonnect Attendees”.
As you navigate Riskonnect’s web sites, Riskonnect may also collect information through the use of commonly-used information-gathering tools, such as cookies and web beacons (“Web Site Navigational Information”). Web Site Navigational Information includes standard information from your Web browser (such as browser type and browser language), your Internet Protocol (“IP”) address, and the actions you take on Riskonnect’s web sites (such as the web pages viewed and the links clicked). Additional information about the collection of Web Site Navigational Information by Riskonnect can be viewed in Section 4 of this Privacy Statement.
With respect to employees and non-employee personnel of Riskonnect, on occasion, transfers personnel data to the United States in connection with the efficient management and operation of Riskonnect, enabling all Riskonnect personnel to communicate with one another and work together, human resources and benefits administration, and safety and security processes. Riskonnect may also transfer employee and non-employee personnel data to an agent of Riskonnect in connection with the above purposes, such as a payroll provider, benefits provider or background-screening provider. Personnel data may also be processed and transferred to the United States in connection with collection and discovery requests in the context of litigation or government investigations, and in such context it may be made available to adverse parties in litigation or governmental entities.
3. Use of Information Collected
Riskonnect uses Data About Riskonnect Customers to perform the services requested. For example, if you fill out a “Contact Me” Web form, Riskonnect will use the information provided to contact you about your interest in the Services.
Riskonnect also uses Data About Riskonnect Attendees to plan and host corporate events in which event attendees may participate and to populate online profiles for Attendees on Riskonnect’s web sites. Additional information on Riskonnect’s privacy practices with respect to Data About Riskonnect Attendees may be found in additional privacy statements on the event web sites, as the case may be.
Riskonnect may also use Data About Riskonnect Customers and Data About Riskonnect Attendees for marketing purposes. For example, Riskonnect may use information you provide to contact you to further discuss your interest in the Services and to send you information regarding Riskonnect, its affiliates, and its partners, such as information about promotions or events.
Riskonnect uses credit card information solely to check the financial qualifications and collect payment from prospective Customers and Attendees.
Riskonnect uses Web Site Navigational Information to operate and improve Riskonnect’s web sites. Riskonnect may also use Web Site Navigational Information alone or in combination with Data About Riskonnect Customers and Data About Riskonnect Attendees to provide personalized information about Riskonnect.
4. Web Site Navigational Information
As stated previously, Riskonnect uses commonly-used information-gathering tools, such as cookies and Web beacons, to collect information as you navigate the Company’s Web sites (“Web Site Navigational Information”). This section describes the types of Web Site Navigational Information used on Riskonnect’s web sites and how this information may be used.
4.2 Web Beacons. Riskonnect uses web beacons alone or in conjunction with cookies to compile information about Customers and Visitors’ usage of Riskonnect’s web sites and interaction with emails from Riskonnect. Web beacons are clear electronic images that can recognize certain types of information on your computer, such as cookies, when you viewed a particular web site tied to the web beacon, and a description of a web site tied to the web beacon. For example, Riskonnect may place web beacons in marketing emails that notify Riskonnect when you click on a link in the email that directs you to one of Riskonnect’s web sites. Riskonnect uses web beacons to operate and improve Riskonnect’s web sites and email communications.
4.3 IP Addresses. When you visit Riskonnect’s web sites, Riskonnect collects your Internet Protocol (“IP”) addresses to track and aggregate non-personal information. For example, Riskonnect uses IP addresses to monitor the regions from which Customers and Visitors navigate Riskonnect’s web sites.
Riskonnect also collects IP addresses from Customers when they log into the Services as part of Riskonnect’s “Identity Confirmation” and “IP Range Restrictions” security features.
5. Sharing of Information Collected
5.1 Service Providers. Riskonnect may share Data About Riskonnect Customers and Data About Riskonnect Attendees with Riskonnect’s contracted service providers so that these service providers can provide services on Riskonnect’s behalf. Riskonnect may also share Data About Riskonnect Customers with Riskonnect’s service providers to ensure the quality of information provided. Unless described in this Privacy Statement, Riskonnect does not share, sell, rent, or trade any information with third parties for their promotional purposes.
5.2 Business Partners. From time to time, Riskonnect may partner with other companies to jointly offer products or services. If you purchase or specifically express interest in a jointly-offered product or service from Riskonnect, We may share Data About Riskonnect Customers collected in connection with your purchase or expression of interest with our joint promotion partner(s). Riskonnect does not control our business partners’ use of the Data About Riskonnect Customers we collect, and their use of the information will be in accordance with their own privacy policies. If you do not wish for your information to be shared in this manner, you may opt not to purchase or specifically express interest in a jointly offered product or service.
Riskonnect does not share Data About Riskonnect Attendees with business partners unless: (1) you specifically opt in to such sharing via an event registration form or (2) you register to attend a Riskonnect corporate event, including webinars. If you do not wish for your information to be shared in this manner, you may choose not to opt in via event registration forms and elect not to have your badge scanned at Riskonnect events. If you choose to share your information with business partners in the manners described above, your information will be subject to the business partners’ respective privacy statements.
5.3 Billing. Riskonnect uses a third-party service provider to manage credit card processing. This service provider is not permitted to store, retain, or use Billing Information except for the sole purpose of credit card processing on Riskonnect’s behalf.
5.4 Compelled Disclosure. Riskonnect reserves the right to use or disclose information provided if required by law or if Riskonnect reasonably believes that use or disclosure is necessary to protect Riskonnect’s rights and/or to comply with a judicial proceeding, court order, or legal process.
6. International Transfer of Information Collected
To facilitate Riskonnect’s global operations, Riskonnect may transfer and access Data About Riskonnect Customers and Data About Riskonnect Attendees from around the world, including the United States. This Privacy Statement shall apply even if Riskonnect transfers Data About Riskonnect Customers or Data About Riskonnect Attendees to other countries.
7. Communications Preferences
Riskonnect offers Visitors, Customers, and Attendees who provide contact information a means to choose how Riskonnect uses the information provided. You may manage your receipt of marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of Riskonnect’s marketing emails. Additionally, you may send a request specifying your communications preferences to email@example.com. Customers cannot opt out of receiving transactional emails related to their account with Riskonnect or the Services.
8. Customer Data
Riskonnect Customers may electronically submit data or information to the Services for hosting and processing purposes (“Customer Data”). Riskonnect will not review, share, distribute, or reference any such Customer Data except as provided in a Master Subscription Agreement (or comparable agreement with Riskonnect), or as may be required by law. In accordance with a Master Subscription Agreement (or comparable agreement with Riskonnect), We may access Customer Data only for the purpose of: providing the Services (including with our contracted service providers as further described in Section 5.1 hereto); preventing or addressing service or technical problems; at a Customer’s request in connection with customer support matters; or as may be required by law.
Riskonnect uses robust security measures to protect Customer Data from unauthorized access, maintain data accuracy, and help ensure the appropriate use of Customer Data. When the Services are accessed using Internet Explorer version 5.0 or later, Firefox version 20.0 or later, Chrome version 24.0 or later, Safari version 5.0 or later, Secure Socket Layer (“SSL”) technology protects Customer Data using both server authentication and data encryption. These technologies help ensure that Customer Data is safe, secure, and only available to the Customer to whom the information belongs and those to whom the Customer has granted access. Riskonnect also implements an advanced security method based on dynamic data and encoded session identifications, and Riskonnect hosts its web sites in a secure server environment that uses firewalls, intrusion detection systems, and other advanced technology to prevent interference or access from outside intruders. Riskonnect also offers enhanced security features within the Services that permit Customers to configure security settings to the level they deem necessary. Customers are responsible for maintaining the security and confidentiality of their Riskonnect usernames and passwords.
Because Riskonnect uses the Services to maintain Data About Riskonnect Customers and Data About Riskonnect Attendees, this information, which is stored in the Services, is secured in the same manner as described above for Customer Data.
Riskonnect shall allow you access to your personal Data and allow you to correct, amend or delete inaccurate information, except where the rights of persons other than you would be violated. Any requests We receive by email or webform to access, change, or delete your information will be completed within 30 days. Normally, Customers may update or change their registration information by editing their user profiles or organization records at the appropriate Riskonnect website. Normally, Attendees may update or change their registration information after logging into appropriate Riskonnect website for the given Riskonnect corporate event.
11. Changes to this Privacy Statement
Riskonnect reserves the right to change this Privacy Statement. Riskonnect will provide notification of the material changes to this Privacy Statement through Riskonnect’s web sites at least thirty (30) business days prior to the change taking effect.
Riskonnect uses a self-assessment approach to assure compliance with this Privacy Statement and periodically verifies that this Privacy Statement is accurate, comprehensive for the information intended to be covered, prominently displayed, completely implemented and accessible and in conformity with the the Safe Harbor Frameworks.
If you have any questions or complaints regarding our compliance with the Safe Harbor Frameworks, please contact us. Riskonnect has a designated Director of Technical Operations who oversees and is accountable for the security of Data on Riskonnect’s web sites. If a complaint or dispute cannot be resolved through our internal process, Riskonnect agrees to dispute resolution by the EU and/or Swiss Data Protection Authorities to serve as an independent recourse mechanism (IRM) for dispute resolution.
13. Contacting Us
Questions regarding this Privacy Statement or the information practices of Riskonnect’s web sites should be addressed to Riskonnect’s Director of Technical Operations by emailing firstname.lastname@example.org, or by mailing Riskonnect at 1701 Barrett Lakes Blvd., Suite 500, Kennesaw, GA 30144 USA.
Last Updated: September 17, 2013